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CLALMS 
We claim: 

1. A method for improving the handling of personally 
identifiable information, said method comprising: 
5 identifying the parties involved in a process of handling 

personally identifiable information; 
identifying the data involved in said process; 
classifying the data; 

expressing each relationship between each pair of said parties 
10 Cl in terms of a privacy agreement; and 

m representing said parties, said data, and said privacy 

si 

agreements graphically in one or more privacy agreement 



relationship diagrams , 
wherein: 



15" said privacy agreement uses a limited number of privacy-related 

CI 

actions concerning said personally identifiable information; 



said privacy agreement expresses rules regarding said privacy- 



□ related actions, for each of said parties; and 

said privacy agreement is specific to a single purpose. 

20 

2. The method of Claim 1, further comprising mapping a business 
process to the privacy rules that should govern the behavior of 
each pair of parties. 

25 3. The method of Claim 1, further comprising identifying 

opportunities to reduce privacy- related risks involved in said 
process . 
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4. The method of Claim 3, further comprising identifying 
unnecessary exchanges of data, for possible elimination. 
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5. The method of Claim 3, further comprising identifying 
opportunities to transform data into a less sensitive form. 

6. A system for improving the handling of personally 
5 identifiable information, said system comprising: 

means for identifying the parties involved in a process of 
handling personally identifiable information; 
means for identifying the data involved in said process; 
means for classifying the data; 
10 O means for expressing each relationship between each pair of said 
m parties in terms of a privacy agreement; and 

^'f means for representing said parties, said data, and said privacy 
agreements graphically in one or more privacy agreement 
relationship diagrams, 
15 ^ wherein; 

gi said privacy agreement uses a limited number of privacy-related 
actions concerning said personally identifiable information; 
said privacy agreement expresses rules regarding said privacy- 
related actions, for each of said parties; and 
20 said privacy agreement is specific to a single purpose. 
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7. The system of Claim 6, further comprising means for mapping a 
business process to the privacy rules that should govern the 
behavior of each pair of parties. 

25 

8. The system of Claim 6, further comprising means for 
identifying opportunities to reduce privacy-related risks 
involved in said process. 
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9. The system of Claim 8, further comprising means for 
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i4pntifying unneGessary exchanges of data, for pos^sible 
elimination . 



10. The system of Claim 8, further comprising means for 
5 identifying opportunities to transform data into a less 

sensitive form. 



11. A computer-usable medium having computer- executable 
instructions for improving the handling of personally 

□ 

10 .i| identifiable information, said computer-executable instructions 

SI • • 

z:: comprising: 

Bi 

4^ means for identifying the parties involved in a process of 
Ji handling personally identifiable information; 
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means for identifying the data involved in said process; 



15 O means for classifying the data; 

SI 

^. means for expressing each relationship between each pair of said 
parties in terms of a privacy agreement; and 



means for representing said parties, said data, and said privacy 
agreements graphically in one or more privacy agreement 
20 relationship diagrams, 

wherein; 

said privacy agreement uses a limited number of privacy- related 
actions concerning said personally identifiable information; 
said privacy agreement expresses rules regarding said privacy- 
25 related actions, for each of said parties; and 

said privacy agreement is specific to a single purpose. 
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12. The computer-usable medium of Claim 11, further comprising 
means for mapping a business process to the privacy rules that 
should govern the behavior of each pair of parties. 
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13. The computer-usable medium of Claim 11, further comprising 
means for identifying opportunities to reduce privacy- related 
risks involved in said process. 

14. The computer-usable medium of Claim 13, further comprising 
means for identifying unnecessary exchanges of data, for 
possible elimination. 

15. The computer-usable medium of Claim 13, further comprising 
means for identifying opportunities to transform data into a 
less sensitive form. 



